Skip to main content
CASE STUDIES

IT vs. Cyber Security, the never-ending story

IT vs. Cyber Security, the never-ending story

Challenge

One of our clients, a respected financial institution, requested a vulnerability assessment of its web application. The initial vulnerability scan of the operating system and application level indicated that something was being hidden. We were further requested to perform a full comprehensive assessment, including penetration testing. During the latter, the application went down; based on our test report, the internal auditing team was able to discover that its IT department was hiding the application behind a firewall without fixing the vulnerabilities, which caused the application to misbehave.

Solution

Based on our audit recommendations, the customer set new internal testing, audit, and vulnerability management policies.

Outcome

The customer’s IT department is no longer hiding vulnerabilities and is now working in full collaboration with the internal cybersecurity team.